Sample viewer

vx.netlux.org/Virus.DOS.Leprosy.666.t

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-17T22:51:56.389010977Z	44	PC: 12b98 \| Get time 0x12b98: cmp byte ptr [0x106], 0 0x12b9d: je 0x12ba4 0x12b9f: cmp dh, 0xf 0x12ba2: jg 0x12bad 0x12ba4: cmp dl, 0 0x12ba7: je 0x12b94 0x12ba9: mov byte ptr [0x106], dl 0x12bad: mov byte ptr [0x249], 0 0x12bb2: mov byte ptr [0x24a], 4 0x12bb7: mov byte ptr [0x253], 0 0x12bbc: mov cx, 0x27 0x12bbf: mov dx, 0x132 0x12bc2: mov ah, 0x4e 0x12bc4: int 0x21 0x12bc6: cmp ax, 0x12 0x12bc9: je 0x12bce 0x12bcb: call 0x12bf0 0x12bce: mov cx, 0x27 0x12bd1: mov dx, 0x138 0x12bd4: mov ah, 0x4e
2018-12-17T22:51:56.391589189Z	78	PC: 12bc6 \| Find first file
2018-12-17T22:51:56.399567434Z	78	PC: 12bd8 \| Find first file
2018-12-17T22:51:56.407528314Z	67	PC: 12c11 \| Get or set file attributes
2018-12-17T22:51:56.426905811Z	61	PC: 12c17 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:51:56.43711267Z	63	PC: 12c26 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:51:56.448684956Z	62	PC: 12c5a \| Close file
2018-12-17T22:51:56.451043893Z	61	PC: 12c63 \| Open file (Filename = 'SLEEP.COM')
2018-12-17T22:51:56.459839871Z	64	PC: 12a5a \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:51:56.470494692Z	87	PC: 12c8b \| Get or set file date and time
2018-12-17T22:51:56.472690566Z	62	PC: 12c93 \| Close file
2018-12-17T22:51:56.482724229Z	67	PC: 12ca0 \| Get or set file attributes
2018-12-17T22:51:56.488661842Z	79	PC: 12c4a \| Find next file
2018-12-17T22:51:56.492100151Z	67	PC: 12c11 \| Get or set file attributes
2018-12-17T22:51:56.503744956Z	61	PC: 12c17 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:51:56.511814544Z	63	PC: 12c26 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:51:56.519696888Z	62	PC: 12c5a \| Close file
2018-12-17T22:51:56.53094435Z	61	PC: 12c63 \| Open file (Filename = 'PRINT.COM')
2018-12-17T22:51:56.548925128Z	64	PC: 12a5a \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:51:56.575456895Z	87	PC: 12c8b \| Get or set file date and time
2018-12-17T22:51:56.578664907Z	62	PC: 12c93 \| Close file
2018-12-17T22:51:56.587916822Z	67	PC: 12ca0 \| Get or set file attributes
2018-12-17T22:51:56.593931155Z	79	PC: 12c4a \| Find next file
2018-12-17T22:51:56.597277699Z	67	PC: 12c11 \| Get or set file attributes
2018-12-17T22:51:56.622319379Z	61	PC: 12c17 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:51:56.629893078Z	63	PC: 12c26 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:51:56.637146744Z	62	PC: 12c5a \| Close file
2018-12-17T22:51:56.640286283Z	61	PC: 12c63 \| Open file (Filename = 'HELLO.COM')
2018-12-17T22:51:56.649401229Z	64	PC: 12a5a \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:51:56.659764679Z	87	PC: 12c8b \| Get or set file date and time
2018-12-17T22:51:56.662731006Z	62	PC: 12c93 \| Close file
2018-12-17T22:51:56.676815277Z	67	PC: 12ca0 \| Get or set file attributes
2018-12-17T22:51:56.682350572Z	79	PC: 12c4a \| Find next file
2018-12-17T22:51:56.685556545Z	67	PC: 12c11 \| Get or set file attributes
2018-12-17T22:51:56.697272294Z	61	PC: 12c17 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:51:56.704796547Z	63	PC: 12c26 \| Read file or device (Read 20 bytes on handle 5)
2018-12-17T22:51:56.712093291Z	62	PC: 12c5a \| Close file
2018-12-17T22:51:56.715409547Z	61	PC: 12c63 \| Open file (Filename = 'PHANG.COM')
2018-12-17T22:51:56.72361437Z	64	PC: 12a5a \| Write file or device (Write 666 bytes on handle 5)
2018-12-17T22:51:56.73335773Z	87	PC: 12c8b \| Get or set file date and time
2018-12-17T22:51:56.736453832Z	62	PC: 12c93 \| Close file
2018-12-17T22:51:56.747125049Z	67	PC: 12ca0 \| Get or set file attributes
2018-12-17T22:51:56.752917975Z	9	PC: 12ccf \| Display string (String= ' ')
2018-12-17T22:51:56.758520447Z	76	PC: 12cd3 \| Terminate with return code (Return code = '36')